PEN-200 is a unique course that combines traditional course materials with hands-on simulations, using a virtual lab environment. The course covers the following topics. View the full syllabus.

• Penetration Testing: What You Should Know
• Getting Comfortable with Kali Linux
• Command Line Fun
• Practical Tools
• Bash Scripting
• Passive Information Gathering
• Active Information Gathering
• Vulnerability Scanning
• Web Application Attacks
• Introduction to Buffer Overflows
• Windows Buffer Overflows
• Linux Buffer Overflows
• Client-Side Attacks
• Locating Public Exploits
• Fixing Exploits
• File Transfers
• Antivirus Evasion
• Privilege Escalation
• Password Attacks
• Port Redirection and Tunneling
• Active Directory Attacks
• The Metasploit Framework
• PowerShell Empire
• Assembling the Pieces: Penetration Test Breakdown
• Trying Harder: The Labs

• Using information gathering techniques to identify and enumerate targets running various operating systems and services
• Writing basic scripts and tools to aid in the penetration testing process
• Analyzing, correcting, modifying, cross-compiling, and porting public exploit code
• Conducting remote, local privilege escalation, and client-side attacks
• Identifying and exploiting XSS, SQL injection, and file inclusion vulnerabilities in web applications
• Leveraging tunneling techniques to pivot between networks
• Creative problem solving and lateral thinking skills

• 17+ hours of video
• 850-page PDF course guide
• Over 70 machines, including recently retired OSCP exam machines
• Active student forums
• Access to virtual lab environment
• Closed Captioning is available for this course